Transmission apparatus, reception apparatus, container transmission system, method, and program
Abstract
In order to appropriately provide information related to vulnerability that may be included in a container as a transmission target, a transmission apparatus includes an information obtaining unit configured to obtain information related to a change-prohibited region included in a container to be transmitted, information indicating that the change-prohibited region has not been changed, and information related to vulnerability inspection for the change-prohibited region, and a transmission processing unit configured to include, in the container, the information related to the change-prohibited region, the information indicating that the change-prohibited region has not been changed, and the information related to the vulnerability inspection for the change-prohibited region, and transmit the container.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1. A transmission apparatus comprising:
a memory storing instructions; and
one or more processors configured to execute the instructions to:
obtain information related to a region included in a container to be transmitted, the region is specified that change is prohibited, information indicating that the region has not been changed, and information related to vulnerability inspection for a reception apparatus to perform for the region; and
include, in the container, the information related to the region, the information indicating that the region has not been changed, and the information related to the vulnerability inspection for the region, and transmit the container to the reception apparatus.
2. The transmission apparatus according to claim 1 , wherein
the information related to the region includes information for identifying a position of the region in the container.
3. The transmission apparatus according to claim 1 , wherein
the information related to the region includes attribute information of one or more files included in the region.
4. The transmission apparatus according to claim 1 , wherein
the information indicating that the region has not been changed includes a hash value generated from the information related to the region.
5. The transmission apparatus according to claim 1 , wherein
the information related to the vulnerability inspection for the region includes information related to an inspection tool that performs the vulnerability inspection for the region.
6. The transmission apparatus according to claim 5 , wherein
the container further includes information for executing the inspection tool.
7. The transmission apparatus according to claim 1 , wherein
the information related to the vulnerability inspection for the region includes information related to an inspection target region included in the region.
8. The transmission apparatus according to claim 1 , wherein
the information related to the vulnerability inspection for the region includes information indicating a configuration condition of a parameter related to vulnerability in the region.
9. The transmission apparatus according to claim 1 , wherein
the one or more processors are configured to execute the instructions to:
before transmitting the container, transmit the information related to the region to a computing system that performs the vulnerability inspection via a communication network, and
receive, before transmitting the container, the information related to the vulnerability inspection for the region from the computing system that performs the vulnerability inspection via the communication network.
10. A reception apparatus comprising:
a memory storing instructions; and
one or more processors configured to execute the instructions to:
receive, from a transmission apparatus, a container including information related to a region included in the container, the region is specified that change is prohibited, information indicating that the region has not been changed, and information related to vulnerability inspection for the reception apparatus to perform for the region;
obtain information related to the vulnerability inspection that is based on the information related to the region included in the container; and
perform verification processing for the container, based on the information related to the vulnerability inspection for the region and the information related to the vulnerability inspection that is based on the information related to the region included in the container.
11. The reception apparatus according to claim 10 , wherein
the container further includes information related to an inspection tool that performs the vulnerability inspection that is based on the information related to the region, and
the one or more processors are configured to execute the instructions to:
perform inspection for the information related to the region by using the inspection tool, and
obtain the information related to the vulnerability inspection that is based on the information related to the region.
12. A container transmission system comprising:
a transmission apparatus; and
a reception apparatus,
wherein the transmission apparatus comprises a memory storing instructions and one or more processors configured to execute the instructions to transmit a container including information related to a region included in the container to be transmitted, the region is specified that change is prohibited, information indicating that the region has not been changed, and information related to vulnerability inspection for the reception apparatus to perform for the region, and
wherein the reception apparatus comprises a memory storing instructions and one or more processors configured to configured to execute the instructions to receive the container from the transmission apparatus, and perform verification processing for the container, based on the information related to the vulnerability inspection for the region and the information related to the vulnerability inspection that is based on the information related to the region included in the container.
13. A method performed by a transmission apparatus and comprising:
obtaining information related to a region included in a container to be transmitted, the region is specified that change is prohibited, information indicating that the region has not been changed, and information related to vulnerability inspection for a reception apparatus to perform for the region; and
including, in the container, the information related to the region, the information indicating that the region has not been changed, and the information related to the vulnerability inspection for the region, and transmitting the container to the reception apparatus.
14. A method performed by a reception apparatus and comprising:
receiving, from a transmission apparatus, a container including information related to a region included in the container, the region is specified that change is prohibited, information indicating that the region has not been changed, and information related to vulnerability inspection for a reception apparatus to perform for the region;
obtaining information related to the vulnerability inspection that is based on the information related to the region included in the container; and
performing verification processing for the container, based on the information related to the vulnerability inspection for the region and the information related to the vulnerability inspection that is based on the information related to the region included in the container.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.